In the third of a series of articles based on the latest meeting of the Intelliflo GDPR Working Group on the ramifications of the GDPR for financial advice firms, Rob Walton looks at personal data breach classification
Under the GDPR, a personal data breach is defined very broadly as "a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed". The working group discussed a three stage process regarding a breach: * First, understanding whether the incident constituted a breach, taking into account the broad definition under the GDPR; * Second, where the incident did constitute a breach, considering whether this posed a risk to the rights and freedoms of data subjects....
To continue reading this article...
Join Professional Adviser for free
Signup and gain exclusive members-only insights
- Unlimited access to real-time news, industry insights and market intelligence
- Stay ahead of the curve with spotlights on emerging trends and technologies
- Receive breaking news stories straight to your inbox in the daily newsletters
- Make smart business decisions with the latest developments in regulation, investing retirement and protection
- Members-only access to the editor’s weekly Friday commentary
- Be the first to hear about our events and awards programmes
